chore(deps): bump rollup and @nx/rollup

[dependabot]

Bumps rollup to 3.29.5 and updates ancestor dependency @nx/rollup. These dependencies need to be updated together.

Updates rollup from 2.79.1 to 3.29.5

Release notes

Sourced from rollup's releases.

v3.29.4

3.29.4

2023-09-28

Bug Fixes

• Fix static analysis when an exported function uses callbacks (#5158)

Pull Requests

• #5158: Deoptimize all parameters when losing track of a function (@​lukastaegert)

v3.29.3

3.29.3

2023-09-24

Bug Fixes

• Fix a bug where code was wrongly tree-shaken after mutating function parameters (#5153)

Pull Requests

• #5145: docs: improve the docs repl appearance in the light mode (@​TrickyPi)
• #5148: chore(deps): update dependency @​vue/eslint-config-typescript to v12 (@​renovate[bot])
• #5149: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #5153: Fully deoptimize first level path when deoptimizing nested parameter paths (@​lukastaegert)

v3.29.2

3.29.2

2023-09-15

Bug Fixes

• Export TreeshakingPreset type (#5131)

Pull Requests

• #5131: fix: exports TreeshakingPreset (@​moltar)
• #5134: docs: steps to enable symlinks on windows (@​thebanjomatic)
• #5137: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])

v3.29.1

3.29.1

2023-09-10

Bug Fixes

... (truncated)

Changelog

Sourced from rollup's changelog.

rollup changelog

4.22.4

2024-09-21

Bug Fixes

• Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#5671)

Pull Requests

• #5670: refactor: Use object.prototype to check for reserved properties (@​YuHyeonWook)
• #5671: Fix DOM Clobbering CVE (@​lukastaegert)

4.22.3

2024-09-21

Bug Fixes

• Ensure that mutations in modules without side effects are observed while properly handling transitive dependencies (#5669)

Pull Requests

• #5669: Ensure impure dependencies of pure modules are added (@​lukastaegert)

4.22.2

2024-09-20

Bug Fixes

• Revert fix for side effect free modules until other issues are investigated (#5667)

Pull Requests

• #5667: Partially revert #5658 and re-apply #5644 (@​lukastaegert)

4.22.1

2024-09-20

Bug Fixes

• Revert #5644 "stable chunk hashes" while issues are being investigated

Pull Requests

• #5663: chore(deps): update dependency inquirer to v11 (@​renovate[bot], @​lukastaegert)

... (truncated)

Commits

• dfd233d 3.29.5
• 2ef77c0 Fix DOM Clobbering CVE
• a6448b9 3.29.4
• 4e92d60 Deoptimize all parameters when losing track of a function (#5158)
• 801ffd1 3.29.3
• 353e462 Fully deoptimize first level path when deoptimizing nested parameter paths (#...
• a1a89e7 chore(deps): update dependency @​vue/eslint-config-typescript to v12 (#5148)
• cc14f70 chore(deps): lock file maintenance minor/patch updates (#5149)
• 1e8355b docs: improve the docs repl appearance in the light mode (#5145)
• 5950fc8 Adapt branches in REPL workflow
• Additional commits viewable in compare view

Updates @nx/rollup from 16.6.0 to 19.8.2

Release notes

Sourced from @​nx/rollup's releases.

19.8.2 (2024-09-26)

🚀 Features

• nx-dev: powerpack landing page (#27963)

🩹 Fixes

• core: hide no file server process json log (#27626)
• js: @​nx/js:init ensures tslib is installed if importHelpers is true (#28083)
• linter: add files entry to angular flat config to avoid applying TS rules to JSON files (#28102)

❤️ Thank You

• Craigory Coppola @​AgentEnder
• Jack Hsu @​jaysoo
• Juri Strumpflohner @​juristr

19.8.1 (2024-09-25)

🚀 Features

• core: allow prompts from init generators during nx init (#28003)

🩹 Fixes

• bundling: remove unused babel-plugin-transform-async-to-promises from @nx/rollup (#27669)
• core: allow creating a db cache without linking task details (#28023)
• core: fix output text for multiple targets (#28043)
• core: sort projects after updating from context (#28024)
• core: add flag when db is disabled for task history (#28059)
• core: set windowsHide: true wherever possible (#28073)
• core: support more structured errors in sync generators (#28075)
• core: nx add should show errors (#28079)
• core: several powerpack fixes (#28088)
• core: remove wasi compatibility while db is unsupported in wasi (#28089)
• linter: do not generate docs.recommended property (#28009)
• linter: ignore dist and use compat helper for eslint-plugin-react-hooks (#28080)
• react: vite should be default bundler in app generator (#28013)
• release: allow dynamically continuing when current version is unresolvable (#28034)
• release: add groupPreVersionCommand to schema, improve logging (#28087)

❤️ Thank You

• Emily Xiong @​xiongemi
• Jack Hsu @​jaysoo
• James Henry @​JamesHenry
• Jason Jean @​FrozenPandaz

... (truncated)

Commits

• 1b2a55c fix(bundling): remove unused babel-plugin-transform-async-to-promises from ...
• 5bbaffb feat(core): add metagenerator for convert-to-inferred (#27672)
• fdb488b feat(bundling): add option to generate sourcemaps for Rollup build (#27539)
• 0853690 docs(core): update Nx tag line (#27481)
• dfd7241 fix(testing): adding e2e projects should register e2e-ci targetDefaults (#27185)
• 2d2c0b5 fix(bundling): explicitly set types for exports entries in package.json (#27152)
• 5e4f05c fix(misc): generate the "types" field in package.json if no set (#27147)
• 34da542 fix(rollup): always generate package.json when using @​nx/rollup:rollup (#26940)
• 58ba1ff feat(angular): support angular v18.1.0 (#26504)
• e292500 fix(misc): respect useInferencePlugin in nx.json when generating apps and lib...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.